Security Advisory

CVE-2017-16926

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2017-11-22 08:00:00

Last updated 2024-08-05 20:35:21

Assigner mitre

State PUBLISHED

Description

Ohcount 3.0.0 is prone to a command injection via specially crafted filenames containing shell metacharacters, which can be exploited by an attacker (providing a source tree for Ohcount processing) to execute arbitrary code as the user running Ohcount.

← Browse all CVEs View on cve.org ↗